Cephalon.Observability.GrafanaCloud
Maturity:
M1· Ownership: cephalon-managed · Family:observability· See audit, matrix.
Cephalon.Observability.GrafanaCloud adds Grafana Cloud OTLP endpoint defaults and access-policy authentication guidance for Cephalon hosts.
What it owns
Section titled “What it owns”- host-builder registration for OTLP logs, metrics, and traces over the shared
Engine:Observability:Telemetrycontract when a shared collector endpoint is already in place - an opt-in Grafana Cloud direct-ingestion path for OTLP/gRPC or OTLP/HTTP by using the Grafana Cloud OTLP endpoint plus either raw OTLP headers or structured access-policy settings
- explicit startup diagnostics that summarize the active endpoint mode, authentication mode, resource context, and signal selection without logging secrets
Main surfaces
Section titled “Main surfaces”Configuration/GrafanaCloudTelemetryExportOptions.csHosting/GrafanaCloudHostApplicationBuilderExtensions.csHosting/GrafanaCloudSummaryHostedService.cs
Source structure
Section titled “Source structure”ConfigurationHosting
How it fits
Section titled “How it fits”This package stays outside Cephalon.Engine and Cephalon.Observability on purpose. The engine still owns diagnostics names and lifecycle signals, Cephalon.Observability still owns the shared telemetry contract, and this companion package layers Grafana Cloud-specific OTLP endpoint and authentication guidance on top of that same baseline.
The Grafana Cloud slice is intentionally explicit about its two modes. If a host already has a shared OTLP collector or gateway path, the package keeps using the shared Endpoint or UseSelfHostedDefaults flow and only adds Grafana-friendly resource context such as service.namespace and deployment.environment.name. If the host wants direct Grafana Cloud ingestion instead, it can enable Engine:Observability:Telemetry:GrafanaCloud:UseDirectGrafanaCloudEndpoint, keep the provider on OpenTelemetry, and configure either the generated OTLP Headers value or a structured InstanceId plus AccessPolicyToken pair for Basic-auth header construction.